中文字幕高清免费日韩视频在线,乡下女人做爰A片,猫咪av成人永久网站在线观看,亚洲高清有码中文字,国产精久久一区二区三区

中图分类号：TP309.5文献标识码：ADOI:10.19358/j.issn.2097-1788.2025.08.002
引用格式：靳京. 基于内核指令检测技术的勒索病毒防护研究［J］.网络安全与数据治理，2025，44（8）：10-16.

Research on ransomware protection based on kernel instruction detection technology

Abstract： The core and essence of ransomware is the encryption operation of data. Its sequence characteristics at the kernel instruction level are relatively fixed and regular. The basic features of the core instructions of typical encryption algorithms are summarized and modeled to form a typical encryption algorithm assembly language instruction set based on a specific CPU architecture. At the same time, a Trie-based recursive marching algorithm is used to dynamically parse and analyze the instruction code sequence in memory, match and detect the running encryption algorithm instructions and their sequence characteristics. It can achieve real-time monitoring and early warning of the core operations of typical encryption algorithms at the instruction level, thereby improving the accuracy and effectiveness of protection against ransomware attacks. Experimental results have shown that it has a good detection effect on ransomware viruses using specific encryption algorithm instructions on a certain ARM architecture platform.

Key words : instruction detection; recursive marching algorithm; ransomware protection; cybersecurity